About
Results-driven DevOps and DevSecOps Engineer with 3.8 years of hands-on experience in cloud security, automation, and scalable DevOps solutions across cloud and hybrid environments. Skilled in AWS, GCP CI/CD pipelines, Docker, Jenkins, and compliance automation. Strong background in integrating security, observability and security tools (Qualys, AWS Security Hub). Passionate about building secure, automated, and scalable cloud infrastructure. AWS Certified Cloud Practitioner with expertise in DevSecOps practices.
Skills & Expertise (57)
Work Experience
DevSecOps Engineer
Inspira Technologies Pvt Ltd
Sep 2021 - Aug 2023
Designed and maintained multi-cloud CI/CD pipelines across AWS and GCP using Jenkins, GitLab CI/CD, Cloud Build, and GitHub Actions for containerized microservices and serverless applications. Managed AWS services including EKS, ECS, Lambda, RDS, S3, CloudFront, and Route 53; and GCP services including GKE, Cloud Run, Cloud SQL, Cloud Storage, and Cloud CDN for production workloads. Automated infrastructure provisioning using Terraform with modular design for both AWS and GCP, managing 200+ resources across dev, staging, and production environments. Built and optimized Docker containerization strategies and managed container registries (Amazon ECR, Google Artifact Registry) with automated vulnerability scanning using Trivy and Aqua Security. Integrated comprehensive monitoring and observability using Prometheus, Grafana, AWS CloudWatch, GCP Cloud Monitoring, and ELK Stack with custom dashboards and PagerDuty alerting. Implemented Infrastructure as Code (IaC) security scanning using Checkov, tfsec, and automated policy enforcement with OPA (Open Policy Agent) in CI/CD pipelines. Orchestrated blue-green and canary deployment strategies using AWS CodeDeploy and GCP Cloud Deploy, achieving zero-downtime releases for critical production services. Developed reusable CI/CD pipeline templates and shared libraries in Groovy and Python, standardizing deployment practices across 15+ development teams. Managed Kubernetes clusters (EKS/GKE) with advanced configurations including HPA, VPA, cluster autoscaling, network policies, RBAC, and pod security policies. Implemented cost optimization strategies using AWS Cost Explorer, GCP Cost Management, and Kubecost, reducing cloud infrastructure costs by 35% through rightsizing and reserved instances. Collaborated with security teams to implement DevSecOps practices including SAST (SonarQube), DAST (OWASP ZAP), container scanning, and secrets management using AWS Secrets Manager and GCP Secret Manager.
Cloud Security Analyst
Qualys Security Tech Service Pvt Ltd
Jun 2024 - Jan 2026
Built and managed automated deployment systems using Jenkins that automatically check for security issues and deploy applications across AWS, Azure, and Google Cloud platforms. Analyzed security data from technical teams to create easy-to-understand reports (TruRisk Insight Reports) that help customers find and fix security problems in their cloud systems. Used Qualys risk scoring system to help customers focus on fixing the most dangerous security issues first, making their cloud infrastructure safer. Set up and managed Qualys TotalCloud security platform that automatically scans and protects cloud systems for multiple customers without manual intervention. Helped customers adopt Qualys TotalCloud solution, which continuously monitors their cloud security and identifies threats in real-time. Assisted customers in improving their overall cloud security by showing them which problems to fix first and how to protect their cloud applications and data. Configured QFlow automation tool that automatically fixes security problems when they're detected, without requiring manual intervention. Integrated monitoring tools (CloudWatch, Grafana, ELK Stack, Splunk) to track system health and security events across different cloud platforms in one place. Implemented security scanning tools and compliance checks in automated deployment pipelines to catch security issues before applications go live. Ensured cloud systems on AWS, Azure, and Google Cloud are secure and follow security best practices to minimize risks. Worked with different technical teams (SRE, Database, Security) to solve problems and improve how quickly and safely applications are deployed. Supported cloud security operations through a combination of data analysis, automation, and close customer collaboration.
Education
Postgraduate Diploma in IT Infrastructure, Systems, and Security - CDAC, Pune
- 2024 · Afghanistan
Master of Computer Application (MCA) - College of Commerce, Arts and Science, Patna
- 2021 · Afghanistan
Certifications
AWS Certified Cloud Practitioner
Amazon Web Services · 2025
Diploma in IT Infrastructure, Systems and Security
CDAC, Pune · 2024
